Chaos Computer Club breaks Apple TouchID

http://www.ccc.de/en/updates/2013/ccc-breaks-apple-touchid

The biometrics hacking team of the Chaos Computer Club (CCC) has successfully bypassed the biometric security of Apple’s TouchID using easy everyday means. A fingerprint of the phone user, photographed from a glass surface, was enough to create a fake finger that could unlock an iPhone 5s secured with TouchID. This demonstrates – again – that fingerprint biometrics is unsuitable as access control method and should be avoided.

Apple had released the new iPhone with a fingerprint sensor that was supposedly much more secure than previous fingerprint technology. A lot of bogus speculation about the marvels of the new technology and how hard to defeat it supposedly is had dominated the international technology press for days.

“In reality, Apple’s sensor has just a higher resolution compared to the sensors so far. So we only needed to ramp up the resolution of our fake”, said the hacker with the nickname Starbug, who performed the critical experiments that led to the successful circumvention of the fingerprint locking. “As we have said now for more than years, fingerprints should not be used to secure anything. You leave them everywhere, and it is far too easy to make fake fingers out of lifted prints.”

The method follows the steps outlined in this how-to with materials that can be found in almost every household: First, the fingerprint of the enroled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with 1200 dpi onto transparent sheet with a thick toner setting. Finally, pink latex milk or white woodglue is smeared into the pattern created by the toner onto the transparent sheet. After it cures, the thin latex sheet is lifted from the sheet, breathed on to make it a tiny bit moist and then placed onto the sensor to unlock the phone. This process has been used with minor refinements and variations against the vast majority of fingerprint sensors on the market.

————-

well that lasted a while didnt it?

owned?

http://nationalreport.net/apple-iphone-5s-fingerprint-database/

“Absolutely the databases will be merged. This whole ‘fingerprint scan’ idea originated from someone in our Government. They just didn’t expect to be outed by Snowden, you know.” Said Tim Richardson, District Manager of Apple’s North America Marketing Department. “

maybe its us who have been owned..

401

About these ads

~ by seeker401 on September 26, 2013.

3 Responses to “Chaos Computer Club breaks Apple TouchID”

  1. http://nationalreport.net/apple-iphone-5s-fingerprint-database/

    • wtf!

      “Apple’s official spokespeople have maintained a vague stance on the potential of sharing their fingerprint database with the NSA. Fortunately, after hours of phone calls I was finally able to speak with an employe that could answer some of my questions.
      “Absolutely the databases will be merged. This whole ‘fingerprint scan’ idea originated from someone in our Government. They just didn’t expect to be outed by Snowden, you know.” Said Tim Richardson, District Manager of Apple’s North America Marketing Department. He went onto explain that the NSA and FBI have been compiling a special database for over a year now to use with the new Apple technology. Fingerprints from all over the nation. Cold cases. Fugitives of the law. Missing persons.”

  2. Reblogged this on Technology.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
Follow

Get every new post delivered to your Inbox.

Join 927 other followers

%d bloggers like this: